📄 certedef.c
字号:
FL_MORE | FL_LEVEL_PKIX_FULL | FL_VALID_CERT, 0, 0, 0, NULL },
{ NULL, CRYPT_CERTINFO_REQUIREEXPLICITPOLICY,
MKDESC( "policyConstraints.requireExplicitPolicy" )
BER_INTEGER, CTAG( 0 ),
FL_MORE | FL_OPTIONAL, 0, 64, 0, NULL },
{ NULL, CRYPT_CERTINFO_INHIBITPOLICYMAPPING,
MKDESC( "policyConstraints.inhibitPolicyMapping" )
BER_INTEGER, CTAG( 1 ),
FL_OPTIONAL, 0, 64, 0, NULL },
/* extKeyUsage:
OID = 2 5 29 37
SEQUENCE {
oidInstance1 OPTIONAL,
oidInstance2 OPTIONAL,
...
oidInstanceN OPTIONAL
} */
{ MKOID( "\x06\x03\x55\x1D\x25" ), CRYPT_CERTINFO_EXTKEYUSAGE,
MKDESC( "extKeyUsage" )
BER_SEQUENCE, 0,
FL_MORE | FL_LEVEL_STANDARD | FL_VALID_CERTREQ | FL_VALID_CERT, 0, 0, 0, NULL },
{ MKOID( "\x06\x0A\x2B\x06\x01\x04\x01\x82\x37\x02\x01\x15" ), CRYPT_CERTINFO_EXTKEY_MS_INDIVIDUALCODESIGNING,
MKDESC( "extKeyUsage.individualCodeSigning (1 3 6 1 4 1 311 2 1 21)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x0A\x2B\x06\x01\x04\x01\x82\x37\x02\x01\x16" ), CRYPT_CERTINFO_EXTKEY_MS_COMMERCIALCODESIGNING,
MKDESC( "extKeyUsage.commercialCodeSigning (1 3 6 1 4 1 311 2 1 22)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x0A\x2B\x06\x01\x04\x01\x82\x37\x0A\x03\x01" ), CRYPT_CERTINFO_EXTKEY_MS_CERTTRUSTLISTSIGNING,
MKDESC( "extKeyUsage.certTrustListSigning (1 3 6 1 4 1 311 10 3 1)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x0A\x2B\x06\x01\x04\x01\x82\x37\x0A\x03\x02" ), CRYPT_CERTINFO_EXTKEY_MS_TIMESTAMPSIGNING,
MKDESC( "extKeyUsage.timeStampSigning (1 3 6 1 4 1 311 10 3 2)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x0A\x2B\x06\x01\x04\x01\x82\x37\x0A\x03\x03" ), CRYPT_CERTINFO_EXTKEY_MS_SERVERGATEDCRYPTO,
MKDESC( "extKeyUsage.serverGatedCrypto (1 3 6 1 4 1 311 10 3 3)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x0A\x2B\x06\x01\x04\x01\x82\x37\x0A\x03\x04" ), CRYPT_CERTINFO_EXTKEY_MS_ENCRYPTEDFILESYSTEM,
MKDESC( "extKeyUsage.encrypedFileSystem (1 3 6 1 4 1 311 10 3 4)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x08\x2B\x06\x01\x05\x05\x07\x03\x01" ), CRYPT_CERTINFO_EXTKEY_SERVERAUTH,
MKDESC( "extKeyUsage.serverAuth (1 3 6 1 5 5 7 3 1)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x08\x2B\x06\x01\x05\x05\x07\x03\x02" ), CRYPT_CERTINFO_EXTKEY_CLIENTAUTH,
MKDESC( "extKeyUsage.clientAuth (1 3 6 1 5 5 7 3 2)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x08\x2B\x06\x01\x05\x05\x07\x03\x03" ), CRYPT_CERTINFO_EXTKEY_CODESIGNING,
MKDESC( "extKeyUsage.codeSigning (1 3 6 1 5 5 7 3 3)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x08\x2B\x06\x01\x05\x05\x07\x03\x04" ), CRYPT_CERTINFO_EXTKEY_EMAILPROTECTION,
MKDESC( "extKeyUsage.emailProtection (1 3 6 1 5 5 7 3 4)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x08\x2B\x06\x01\x05\x05\x07\x03\x05" ), CRYPT_CERTINFO_EXTKEY_IPSECENDSYSTEM,
MKDESC( "extKeyUsage.ipsecEndSystem (1 3 6 1 5 5 7 3 5)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x08\x2B\x06\x01\x05\x05\x07\x03\x06" ), CRYPT_CERTINFO_EXTKEY_IPSECTUNNEL,
MKDESC( "extKeyUsage.ipsecTunnel (1 3 6 1 5 5 7 3 6)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x08\x2B\x06\x01\x05\x05\x07\x03\x07" ), CRYPT_CERTINFO_EXTKEY_IPSECUSER,
MKDESC( "extKeyUsage.ipsecUser (1 3 6 1 5 5 7 3 7)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x08\x2B\x06\x01\x05\x05\x07\x03\x08" ), CRYPT_CERTINFO_EXTKEY_TIMESTAMPING,
MKDESC( "extKeyUsage.timeStamping (1 3 6 1 5 5 7 3 8)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x08\x2B\x06\x01\x05\x05\x07\x03\x09" ), CRYPT_CERTINFO_EXTKEY_OCSPSIGNING,
MKDESC( "extKeyUsage.ocspSigning (1 3 6 1 5 5 7 3 9)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x05\x2B\x24\x08\x02\x01" ), CRYPT_CERTINFO_EXTKEY_DIRECTORYSERVICE,
MKDESC( "extKeyUsage.directoryService (1 3 36 8 2 1)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x09\x60\x86\x48\x01\x86\xF8\x42\x04\x01" ), CRYPT_CERTINFO_EXTKEY_NS_SERVERGATEDCRYPTO,
MKDESC( "extKeyUsage.serverGatedCrypto (2 16 840 1 113730 4 1)" )
FIELDTYPE_IDENTIFIER, 0,
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ MKOID( "\x06\x0A\x60\x86\x48\x01\x86\xF8\x45\x01\x08\x01" ), CRYPT_CERTINFO_EXTKEY_VS_SERVERGATEDCRYPTO_CA,
MKDESC( "extKeyUsage.serverGatedCryptoCA (2 16 840 1 113733 1 8 1)" )
FIELDTYPE_IDENTIFIER, 0,
FL_OPTIONAL, 0, 0, 0, NULL },
/* freshestCRL:
OID = 2 5 29 46
SEQUENCE OF {
SEQUENCE {
distributionPoint
[ 0 ] { -- CHOICE { ... }
fullName [ 0 ] SEQUENCE OF GeneralName
} OPTIONAL,
reasons [ 1 ] BIT STRING OPTIONAL,
cRLIssuer [ 2 ] SEQUENCE OF GeneralName OPTIONAL
}
} */
{ MKOID( "\x06\x03\x55\x1D\x2E" ), CRYPT_CERTINFO_FRESHESTCRL,
MKDESC( "freshestCRL" )
BER_SEQUENCE, 0,
FL_MORE | FL_LEVEL_PKIX_FULL | FL_VALID_CERT | FL_VALID_ATTRCERT | FL_SETOF, 0, 0, 0, NULL },
{ NULL, 0,
MKDESC( "freshestCRL.distributionPoint" )
BER_SEQUENCE, 0,
FL_MORE, 0, 0, 0, NULL },
{ NULL, 0,
MKDESC( "freshestCRL.distributionPoint.distributionPoint" )
BER_SEQUENCE, CTAG( 0 ),
FL_MORE | FL_OPTIONAL, 0, 0, 0, NULL },
{ NULL, 0,
MKDESC( "freshestCRL.distributionPoint.distributionPoint.fullName" )
BER_SEQUENCE, CTAG( 0 ),
FL_MORE | FL_SETOF, 0, 0, 0, NULL },
{ NULL, CRYPT_CERTINFO_FRESHESTCRL_FULLNAME,
MKDESC( "freshestCRL.distributionPoint.distributionPoint.fullName.generalName" )
FIELDTYPE_SUBTYPED, 0,
FL_MORE | FL_OPTIONAL | FL_MULTIVALUED | FL_SEQEND_2, 0, 0, 0, ( void * ) generalNameInfo },
{ NULL, CRYPT_CERTINFO_FRESHESTCRL_REASONS,
MKDESC( "freshestCRL.distributionPoint.reasons" )
BER_BITSTRING, CTAG( 1 ),
FL_MORE | FL_OPTIONAL | FL_MULTIVALUED, 0, CRYPT_CRLREASONFLAG_LAST, 0, NULL },
{ NULL, 0,
MKDESC( "freshestCRL.distributionPoint.cRLIssuer" )
BER_SEQUENCE, CTAG( 2 ),
FL_MORE | FL_SETOF | FL_OPTIONAL, 0, 0, 0, NULL },
{ NULL, CRYPT_CERTINFO_FRESHESTCRL_CRLISSUER,
MKDESC( "freshestCRL.distributionPoint.cRLIssuer.generalName" )
FIELDTYPE_SUBTYPED, 0,
FL_OPTIONAL | FL_MULTIVALUED | FL_SEQEND_2, 0, 0, 0, ( void * ) generalNameInfo },
/* inhibitAnyPolicy:
OID = 2 5 29 54
INTEGER */
{ MKOID( "\x06\x03\x55\x1D\x36" ), CRYPT_CERTINFO_CRLNUMBER,
MKDESC( "inhibitAnyPolicy" )
BER_INTEGER, 0,
FL_LEVEL_PKIX_FULL | FL_VALID_CERTREQ | FL_VALID_CERT, 0, 64, 0, NULL },
/* netscape-cert-type:
OID = 2 16 840 1 113730 1 1
BITSTRING */
{ MKOID( "\x06\x09\x60\x86\x48\x01\x86\xF8\x42\x01\x01" ), CRYPT_CERTINFO_NS_CERTTYPE,
MKDESC( "netscape-cert-type" )
BER_BITSTRING, 0,
FL_LEVEL_REDUCED | FL_VALID_CERTREQ | FL_VALID_CERT, 0, CRYPT_NS_CERTTYPE_LAST, 0, NULL },
/* netscape-base-url:
OID = 2 16 840 1 113730 1 2
IA5String */
{ MKOID( "\x06\x09\x60\x86\x48\x01\x86\xF8\x42\x01\x02" ), CRYPT_CERTINFO_NS_BASEURL,
MKDESC( "netscape-base-url" )
BER_STRING_IA5, 0,
FL_LEVEL_STANDARD | FL_VALID_CERT, MIN_URL_SIZE, MAX_URL_SIZE, 0, ( void * ) checkHTTP },
/* netscape-revocation-url:
OID = 2 16 840 1 113730 1 3
IA5String */
{ MKOID( "\x06\x09\x60\x86\x48\x01\x86\xF8\x42\x01\x03" ), CRYPT_CERTINFO_NS_REVOCATIONURL,
MKDESC( "netscape-revocation-url" )
BER_STRING_IA5, 0,
FL_LEVEL_STANDARD | FL_VALID_CERT, MIN_URL_SIZE, MAX_URL_SIZE, 0, ( void * ) checkHTTP },
/* netscape-ca-revocation-url:
OID = 2 16 840 1 113730 1 3
IA5String */
{ MKOID( "\x06\x09\x60\x86\x48\x01\x86\xF8\x42\x01\x04" ), CRYPT_CERTINFO_NS_CAREVOCATIONURL,
MKDESC( "netscape-ca-revocation-url" )
BER_STRING_IA5, 0,
FL_LEVEL_STANDARD | FL_VALID_CERT, MIN_URL_SIZE, MAX_URL_SIZE, 0, ( void * ) checkHTTP },
/* netscape-ca-revocation-url:
OID = 2 16 840 1 113730 11 7
IA5String */
{ MKOID( "\x06\x09\x60\x86\x48\x01\x86\xF8\x42\x01\x07" ), CRYPT_CERTINFO_NS_CERTRENEWALURL,
MKDESC( "netscape-ca-revocation-url" )
BER_STRING_IA5, 0,
FL_LEVEL_STANDARD | FL_VALID_CERT, MIN_URL_SIZE, MAX_URL_SIZE, 0, ( void * ) checkHTTP },
/* netscape-ca-policy-url:
OID = 2 16 840 1 113730 1 8
IA5String */
{ MKOID( "\x06\x09\x60\x86\x48\x01\x86\xF8\x42\x01\x08" ), CRYPT_CERTINFO_NS_CAPOLICYURL,
MKDESC( "netscape-ca-policy-url" )
BER_STRING_IA5, 0,
FL_LEVEL_STANDARD | FL_VALID_CERT, MIN_URL_SIZE, MAX_URL_SIZE, 0, ( void * ) checkHTTP },
/* netscape-ssl-server-name:
OID = 2 16 840 1 113730 1 12
IA5String */
{ MKOID( "\x06\x09\x60\x86\x48\x01\x86\xF8\x42\x01\x0C" ), CRYPT_CERTINFO_NS_SSLSERVERNAME,
MKDESC( "netscape-ssl-server-name" )
BER_STRING_IA5, 0,
FL_LEVEL_STANDARD | FL_VALID_CERTREQ | FL_VALID_CERT, MIN_DNS_SIZE, MAX_DNS_SIZE, 0, ( void * ) checkDNS },
/* netscape-comment:
OID = 2 16 840 1 113730 1 13
IA5String */
{ MKOID( "\x06\x09\x60\x86\x48\x01\x86\xF8\x42\x01\x0D" ), CRYPT_CERTINFO_NS_COMMENT,
MKDESC( "netscape-comment" )
BER_STRING_IA5, 0,
FL_LEVEL_STANDARD | FL_VALID_CERTREQ | FL_VALID_CERT, 1, 1024, 0, NULL },
/* hashedRootKey:
OID = 2 23 42 7 0
critical = TRUE
SEQUENCE {
rootKeyThumbprint DigestedData -- PKCS #7-type wrapper
} */
{ MKOID( "\x06\x04\x67\x2A\x07\x00" ), CRYPT_CERTINFO_SET_HASHEDROOTKEY,
MKDESC( "hashedRootKey" )
BER_SEQUENCE, 0,
FL_MORE | FL_CRITICAL | FL_LEVEL_PKIX_FULL | FL_VALID_CERT, 0, 0, 0, NULL },
{ NULL, 0,
MKDESC( "hashedRootKey.rootKeyThumbprint" )
FIELDTYPE_BLOB, 0, /* PKCS #7-type wrapper */
FL_MORE | FL_NONENCODING, 0, 0, 25,
"\x30\x2D\x02\x01\x00\x30\x09\x06\x05\x2B\x0E\x03\x02\x1A\x05\x00\x30\x07\x06\x05\x67\x2A\x03\x00\x00" },
{ NULL, CRYPT_CERTINFO_SET_ROOTKEYTHUMBPRINT,
MKDESC( "hashedRootKey.rootKeyThumbprint.hashData" )
BER_OCTETSTRING, 0,
0, 20, 20, 0, NULL },
/* certificateType:
OID = 2 23 42 7 1
critical = TRUE
BIT STRING */
{ MKOID( "\x06\x04\x67\x2A\x07\x01" ), CRYPT_CERTINFO_SET_CERTIFICATETYPE,
MKDESC( "certificateType" )
BER_BITSTRING, 0,
FL_CRITICAL | FL_LEVEL_PKIX_FULL | FL_VALID_CERT | FL_VALID_CERTREQ, 0, CRYPT_SET_CERTTYPE_LAST, 0, NULL },
/* merchantData:
OID = 2 23 42 7 2
SEQUENCE {
merID SETString SIZE(1..30),
merAcquirerBIN NumericString SIZE(6),
merNameSeq SEQUENCE OF MerNames,
merCountry INTEGER (1..999),
merAuthFlag BOOLEAN DEFAULT TRUE
}
MerNames ::= SEQUENCE {
language [ 0 ] VisibleString SIZE(1..35),
name [ 1 ] EXPLICIT SETString SIZE(1..50),
city [ 2 ] EXPLICIT SETString SIZE(1..50),
stateProvince [ 3 ] EXPLICIT SETString SIZE(1..50) OPTIONAL,
postalCode [ 4 ] EXPLICIT SETString SIZE(1..14) OPTIONAL,
countryName [ 5 ] EXPLICIT SETString SIZE(1..50)
} */
{ MKOID( "\x06\x04\x67\x2A\x07\x02" ), CRYPT_CERTINFO_SET_MERCHANTDATA,
MKDESC( "merchantData" )
BER_SEQUENCE, 0,
FL_MORE | FL_LEVEL_PKIX_FULL | FL_VALID_CERT, 0, 0, 0, NULL },
{ NULL, CRYPT_CERTINFO_SET_MERID,
MKDESC( "merchantData.merID" )
BER_STRING_ISO646, 0,
FL_MORE, 1, 30, 0, NULL },
{ NULL, CRYPT_CERTINFO_SET_MERACQUIRERBIN,
MKDESC( "merchantData.merAcquirerBIN" )
BER_STRING_NUMERIC, 0,
FL_MORE, 6, 6, 0, NULL },
{ NULL, 0,
MKDESC( "merchantData.merNameSeq" )
BER_SEQUENCE, 0,
FL_MORE | FL_SETOF, 0, 0, 0, NULL },
{ NULL, 0,
MKDESC( "merchantData.merNameSeq.merNames" )
BER_SEQUENCE, 0,
FL_MORE, 0, 0, 0, NULL },
{ NULL, CRYPT_CERTINFO_SET_MERCHANTLANGUAGE,
MKDESC( "merchantData.merNameSeq.merNames.language" )
BER_STRING_ISO646, CTAG( 0 ),
FL_MORE | FL_MULTIVALUED, 1, 35, 0, NULL },
{ NULL, CRYPT_CERTINFO_SET_MERCHANTNAME,
MKDESC( "merchantData.merNameSeq.merNames.name" )
BER_STRING_ISO646, CTAG( 1 ),
FL_MORE | FL_MULTIVALUED | FL_EXPLICIT, 1, 50, 0, NULL },
{ NULL, CRYPT_CERTINFO_SET_MERCHANTCITY,
MKDESC( "merchantData.merNameSeq.merNames.city" )
BER_STRING_ISO646, CTAG( 2 ),
FL_MORE | FL_MULTIVALUED | FL_EXPLICIT, 1, 50, 0, NULL },
{ NULL, CRYPT_CERTINFO_SET_MERCHANTSTATEPROVINCE,
MKDESC( "merchantData.merNameSeq.merNames.stateProvince" )
BER_STRING_ISO646, CTAG( 3 ),
FL_MORE | FL_MULTIVALUED | FL_EXPLICIT | FL_OPTIONAL, 1, 50, 0, NULL },
{ NULL, CRYPT_CERTINFO_SET_MERCHANTPOSTALCODE,
MKDESC( "merchantData.merNameSeq.merNames.postalCode" )
BER_STRING_ISO646, CTAG( 4 ),
FL_MORE | FL_MULTIVALUED | FL_EXPLICIT | FL_OPTIONAL, 1, 50, 0, NULL },
{ NULL, CRYPT_CERTINFO_SET_MERCHANTCOUNTRYNAME,
MKDESC( "merchantData.merNameSeq.merNames.countryName" )
BER_STRING_ISO646, CTAG( 5 ),
FL_MORE | FL_MULTIVALUED | FL_EXPLICIT | FL_SEQEND_2, 1, 50, 0, NULL },
{ NULL, CRYPT_CERTINFO_SET_MERCOUNTRY,
MKDESC( "merchantData.merCountry" )
BER_INTEGER, 0,
FL_MORE, 1, 999, 0, NULL },
{ NULL, CRYPT_CERTINFO_SET_MERAUTHFLAG,
MKDESC( "merchantData.merAuthFlag" )
BER_BOOLEAN, 0,
FL_OPTIONAL | FL_DEFAULT, FALSE, TRUE, FALSE, NULL },
/* certCardRequired
OID = 2 23 42 7 3
BOOLEAN */
{ MKOID( "\x06\x04\x67\x2A\x07\x03" ), CRYPT_CERTINFO_SET_CERTCARDREQUIRED,
MKDESC( "certCardRequired" )
BER_BOOLEAN, 0,
FL_LEVEL_PKIX_FULL | FL_VALID_CERT, FALSE, TRUE, 0, NULL },
/* tunneling:
OID = 2 23 42 7 4
SEQUENCE {
tunneling DEFAULT TRUE,
tunnelAlgIDs SEQUENCE OF OBJECT IDENTIFIER
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -